Joe

Editing the urllib.request.urlopen(repo_url) to include the CA from certifi did the trick. The line with this on then looked like this with urllib.request.urlopen(repo_url, cafile='C:\\Users\\Administrator\\yara\\lib\\site-packages\\certifi\\cacert.pem') as response, open("./dbs/%s" % filename, 'wb')...

Can confirm this is the August Security Update

@cnotin Thanks for this. Looks like i lost the changes when making the merge more presentable. I have amended the commit to now include the changes in kull_m_rpc_ms-pac.h as looks...

Thanks for the report and clear information. I have put this in the backlog to sort. I dont think changes to the control paths will make it into 3.4 but...

Yep. This was fixed internally for a long while now. It will be released in 3.4. Thank you for raising though :)

Thanks for the report. I have now confirmed this and logged a bug on the backlog for it. We will look for this to be resolved in the next release.

Hi there, thanks for the feature request. We have to be slightly careful given the amount of data that would be in here for larger environments. Its definitely something possible...

Hi there, thank you for the extra information and the report here! I have reproduced the issue but I cannot seem to immediately track down where exactly the bug is...

Hi there, Thanks for reporting this. This specific case is captured by PingCastle but only when the msds-MachineAccountQuota is not set to 0, which makes it even easier to exploit....

Hi there, Thanks for letting us know. I have added this to the backlog to get updated for the next release. I have also opted to use the Microsoft Learn...